|
jeffv via plug on 4 Aug 2025 06:44:52 -0700
|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
[PLUG] 'Plague' PAM Backdoor Exposes Critical Linux Systems to Silent Credential Theft
|
- From: jeffv via plug <plug@lists.phillylinux.org>
- To: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
- Subject: [PLUG] 'Plague' PAM Backdoor Exposes Critical Linux Systems to Silent Credential Theft
- Date: Mon, 4 Aug 2025 09:44:46 -0400
- Authentication-results: smtp04.aqua.email-ash1.sync.lan smtp.user=<hidden>; auth=pass (LOGIN)
- Dkim-signature: v=1; a=rsa-sha1; d=op.net; s=20180222; c=relaxed/simple; q=dns/txt; i=@op.net; t=1754315087; h=From:Subject:Date:To:MIME-Version:Content-Type; bh=CH/8UeF3o+twSaM0LZyzz3mu8LI=; b=CgDcutPCteySUwZjlYYUrzK/LQ9Ersx3iswT72CD5rQ2IMpwxaAMYVcOiG0y6Gpu vrn547KLbUtI8HVNv6D3mUrf/cIfcwZjlnI9LWDPwqV8x2jd/giMjer/W9/DGWcS ISiNT6wHb+L8FN1kmamYYY2AHJVlQ0fivSk500u7BwGZSju+hYKulaMP5vIog6zo u4BvUr7m0+92NvWZjJ5XvhfVw1AUa6PIJv2PHo9imheGV5Dhxj6m7DlvG3GmQy0n phV+DvrLlzLPCD4h5uASeQ0N6fYvryLkytzKFdn/fTPdd20NpdDLgDnr+yF+S1PB MurV/UbdRW6YPsNRZagIew==;
- Reply-to: jeffv <jeffv@op.net>
- Sender: "plug" <plug-bounces@lists.phillylinux.org>
- User-agent: Mozilla Thunderbird
New 'Plague' PAM Backdoor Exposes Critical Linux Systems to Silent
Credential Theft
https://thehackernews.com/2025/08/new-plague-pam-backdoor-exposes.html
"The implant is built as a malicious PAM (Pluggable Authentication
Module), enabling attackers to silently bypass system authentication and
gain persistent SSH access," Nextron Systems researcher Pierre-Henri
Pezier said.
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug